comsec-group / zenhammerLinks
Artifacts for "ZenHammer: Rowhammer Attacks on AMD Zen-based Platforms" (USENIX Security '24).
☆54Updated 2 months ago
Alternatives and similar repositories for zenhammer
Users that are interested in zenhammer are comparing it to the libraries listed below
Sorting:
- Spectre based on Linear Address Masking☆69Updated last year
- InSpectre Gadget: in-depth inspection and exploitability analysis of Spectre disclosure gadgets☆54Updated 4 months ago
- TikTag: Breaking ARM's Memory Tagging Extension with Speculative Execution (IEEE S&P 2025)☆78Updated 9 months ago
- Source code & scripts for experimental characterization and real-system demonstration of RowPress, a widespread read disturbance phenomen…☆33Updated last year
- Training in Transient Execution and PhantomCALL, from Inception (SEC'23) Artifacts.☆37Updated last year
- Arbitrary Speculative Code Execution with Return Instructions☆162Updated last year
- Artifact of "Indirector: High-Precision Branch Target Injection Attacks Exploiting the Indirect Branch Predictor" [USENIX Security 2024]☆62Updated last year
- Proof-of-concept for the GhostWrite CPU bug.☆116Updated last year
- Proof-of-concept implementation for the paper "Indirect Meltdown: Building Novel Side-Channel Attacks from Transient Execution Attacks" (…☆22Updated last year
- ☆112Updated 2 years ago
- Ghidra Processor Module to disassemble and decompile the x86 Intel Atom microcode☆82Updated 2 years ago
- ☆74Updated last year
- Student Starter Code for Secure Hardware Design at MIT☆77Updated last year
- Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 20…☆63Updated last year
- This repository contains exploit and reverse-engineering source code regarding the Spectre-BHB/Branch History Injection vulnerability☆117Updated 3 years ago
- ☆17Updated last year
- ☆59Updated 5 months ago
- A migration for the page table entry based side-channel attack agains SGX enclaves.☆18Updated 6 months ago
- ☆71Updated 3 months ago
- Proof-of-concept implementation for the paper "Hammulator: Simulate Now - Exploit Later" (DRAMSec 2023)☆17Updated 2 years ago
- This repo demonstrates the Return-to-Non-Secure (ret2ns) vulnerability on ARM Cortex-M TrustZone. It contains the attack and defense demo…☆32Updated last year
- ☆39Updated 2 years ago
- ☆16Updated 3 years ago
- Pathfinder: High-Resolution Control-Flow Attacks Exploiting the Conditional Branch Predictor☆18Updated last year
- PoC for PixieFail vulnerabilities☆23Updated last year
- Revizor - a fuzzer to search for microarchitectural leaks in CPUs☆162Updated 3 weeks ago
- Source code of the paper "Lord of the Ring(s): Side Channel Attacks on the CPU On-Chip Ring Interconnect Are Practical"☆142Updated 4 years ago
- Proof-of-concept implementation for the paper "Efficient and Generic Microarchitectural Hash-Function Recovery" (IEEE S&P 2024)☆30Updated last year
- Using Malicious #VC Interrupts to Break AMD SEV-SNP (IEEE S&P 2024)☆24Updated last year
- A Binary Ninja plugin that automatically resolves type information for EFI protocol usage.☆38Updated 3 weeks ago